CVE-2023-2090: SourceCodester Employee and Visitor Gate Pass Logging System GET Parameter view_designation.php sql injection
First published: Sat Apr 15 2023(Updated: )
A vulnerability classified as critical has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. Affected is an unknown function of the file /admin/maintenance/view_designation.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-226098 is the identifier assigned to this vulnerability.
Credit: cna@vuldb.com cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Employee And Visitor Gate Pass Logging System Project Employee And Visitor Gate Pass Logging System | =1.0 | |
| Oretnom23 Employee And Visitor Gate Pass Logging System | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/type
- agent/weakness
- agent/references
- agent/author
- agent/softwarecombine
- agent/description
- agent/title
- agent/severity
- agent/first-publish-date
- agent/event
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/employee and visitor gate pass logging system project
- canonical/employee and visitor gate pass logging system project employee and visitor gate pass logging system
- version/employee and visitor gate pass logging system project employee and visitor gate pass logging system/1.0
- vendor/oretnom23
- canonical/oretnom23 employee and visitor gate pass logging system
- version/oretnom23 employee and visitor gate pass logging system/1.0